| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-59852 | HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability | HCL | DFXAnalytics | Low | 3.7 | 2026-05-06 10:25:30 | Deep Dive |
| CVE-2025-59851 | HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability | HCL | DFXAnalytics | Low | 3.7 | 2026-05-06 10:24:55 | Deep Dive |
| CVE-2025-31970 | HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability | HCL | DFXAnalytics | Medium | 5.3 | 2026-05-06 10:22:42 | Deep Dive |
| CVE-2026-6420 | Keylime: keylime: security bypass due to hardcoded tpm quote nonce | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.3 | 2026-05-06 10:19:39 | Deep Dive |
| CVE-2026-6860 | Eclipse Vert.x 安全漏洞 | Eclipse Foundation | Eclipse Vert.x | - | - | 2026-05-06 09:55:13 | Deep Dive |
| CVE-2026-1719 | Gravity Bookings <= 2.5.9 - Unauthenticated SQL Injection via 'category_id' Parameter | GravityMore | Gravity Bookings | High | 7.5 | 2026-05-06 09:27:49 | Deep Dive |
| CVE-2026-40001 | Local privilege escalation vulnerability in ZTE PROCESS Guard service of the cloud computer client | ZTE | ZTE PROCESS Guard service | Medium | 5.2 | 2026-05-06 08:48:10 | Deep Dive |
| CVE-2026-40010 | Apache Wicket: possible session fixation using AuthenticatedWebSession | Apache Software Foundation | Apache Wicket | - | - | 2026-05-06 08:34:30 | Deep Dive |
| CVE-2026-42509 | Apache Wicket: crafted strings can break out of the JavaScript sequence | Apache Software Foundation | Apache Wicket | - | - | 2026-05-06 08:34:01 | Deep Dive |
| CVE-2026-43646 | Apache Wicket: crafted URLs can bypass PackageResourceGuard | Apache Software Foundation | Apache Wicket | - | - | 2026-05-06 08:31:51 | Deep Dive |
| CVE-2026-43975 | Apache Wicket: Possible malicious path traversal in FolderUploadsFileManager | Apache Software Foundation | Apache Wicket | - | - | 2026-05-06 08:28:28 | Deep Dive |
| CVE-2026-35255 | Oracle Cloud Native Environment Command Line Interface 代码注入漏洞 | Oracle Corporation | Oracle Cloud Native Environment Command Line Interface | Medium | 6.6 | 2026-05-06 08:05:59 | Deep Dive |
| CVE-2026-43120 | RDMA/irdma: Fix double free related to rereg_user_mr | Linux | Linux | High | 7.8 | 2026-05-06 07:40:44 | Deep Dive |
| CVE-2026-43118 | btrfs: fix zero size inode with non-zero size after log replay | Linux | Linux | - | - | 2026-05-06 07:40:43 | Deep Dive |
| CVE-2026-43119 | Bluetooth: hci_sync: annotate data-races around hdev->req_status | Linux | Linux | - | - | 2026-05-06 07:40:43 | Deep Dive |
| CVE-2026-43117 | btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() | Linux | Linux | Critical | 9.1 | 2026-05-06 07:40:42 | Deep Dive |
| CVE-2026-43116 | netfilter: ctnetlink: ensure safe access to master conntrack | Linux | Linux | High | 7.8 | 2026-05-06 07:40:41 | Deep Dive |
| CVE-2026-43115 | srcu: Use irq_work to start GP in tiny SRCU | Linux | Linux | - | - | 2026-05-06 07:40:41 | Deep Dive |
| CVE-2026-43114 | netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry | Linux | Linux | Critical | 9.4 | 2026-05-06 07:40:40 | Deep Dive |
| CVE-2026-43113 | wifi: wl1251: validate packet IDs before indexing tx_frames | Linux | Linux | High | 8.8 | 2026-05-06 07:40:39 | Deep Dive |